How to install a Grid Host certificate.

To use a Certificate with Grid software, you need to convert it to PEM format Key pair in 2 separate files: one for the key itself, and one for the certificate.

If the certificate is installed in your browser, you need to export it to a file first:

• Export and import certificate with IE
• Export user certificate using Mozilla browser
• Export user certificate on Mac

Convert to PEM Keypair

Copy the certificate to a file named hostCert.p12 on the computer where you want to install it.

Extract the certificate (which contains the public key) and the private key:

• Extract the certificate:
  openssl pkcs12 -in hostCert.p12 -clcerts -nokeys -out /etc/grid-security/hostcert.pem
• Extract the encrypted private key. To avoid protecting the key with a passphrase, specify the -nodes option:
  openssl pkcs12 -in hostCert.p12 -nocerts -nodes -out /etc/grid-security/hostkey.pem
• You must set the appropriate permissions on the key file:
  chmod 0600 /etc/grid-security/hostkey.pem.

Delete the hostCert.p12 file created above to avoid security issues.